Overview

overview

4

Static

static

3

53c4118e99...18.exe

windows7-x64

4

53c4118e99...18.exe

windows10-2004-x64

4

Analysis

  • max time kernel
    141s
  • max time network
    127s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    17/10/2024, 21:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    53c4118e991e564959e2e7c1825102fc_JaffaCakes118.exe

  • Size

    448KB

  • MD5

    53c4118e991e564959e2e7c1825102fc

  • SHA1

    34c62d04e98b5a7f5315e6821806fecaab7f3d94

  • SHA256

    62a947de34d86f2227d2e1db548827132068e642c174d94e82cbf1f6732a1be3

  • SHA512

    c4ae846cfb062354b5f5229b5d96c5ca08b9e72f6035c1254b1279c13daa56ced1c0a6f0825eae3358482c11cf07a452f70609deae5889f07540653d18f2f7d8

  • SSDEEP

    12288:D5OHH9t0ATT5FH3B8BXrmBriIgvUJypEYCAK7RlBh:DIEA/gk7ypzK7RlBh

Score
4/10
discovery

Malware Config

Signatures

  • Drops file in Program Files directory 26 IoCs
  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\53c4118e991e564959e2e7c1825102fc_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\53c4118e991e564959e2e7c1825102fc_JaffaCakes118.exe"
    1⤵
    • Drops file in Program Files directory
    • System Location Discovery: System Language Discovery
    PID:4784

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4784-24-0x0000000000400000-0x0000000000423000-memory.dmp

    Filesize

    140KB

    Download